531f069351b01a6cb240d539c48c3b3685f91506c60bbb572af3252044d4e509 | Triage

Sharing

General

Target

531f069351b01a6cb240d539c48c3b3685f91506c60bbb572af3252044d4e509
Size

236KB
Sample

240305-y97ltshe86
MD5

638e81d6b7771dbb3e23c5df6c757d61
SHA1

01033b92e1052fe1c8bbd4cce253b7c76737f56e
SHA256

531f069351b01a6cb240d539c48c3b3685f91506c60bbb572af3252044d4e509
SHA512

a24e263dec3a9815556410f4bcea9ed425cea03e31f532878e8007f6edbb1441912a79b4b0d5545b5aeaf66835d4230274d330c2d1ac68e34331c273051f1a0e
SSDEEP

3072:18dIP8iYMduJ9IDlRxyhTbhgu+tAcrbFAJc+RsUi1aVDkOvhJjvJUp:oIUiYMdusDshsrtMsQB4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  531f069351b01a6cb240d539c48c3b3685f91506c60bbb572af3252044d4e509
- Size
  
  236KB
- MD5
  
  638e81d6b7771dbb3e23c5df6c757d61
- SHA1
  
  01033b92e1052fe1c8bbd4cce253b7c76737f56e
- SHA256
  
  531f069351b01a6cb240d539c48c3b3685f91506c60bbb572af3252044d4e509
- SHA512
  
  a24e263dec3a9815556410f4bcea9ed425cea03e31f532878e8007f6edbb1441912a79b4b0d5545b5aeaf66835d4230274d330c2d1ac68e34331c273051f1a0e
- SSDEEP
  
  3072:18dIP8iYMduJ9IDlRxyhTbhgu+tAcrbFAJc+RsUi1aVDkOvhJjvJUp:oIUiYMdusDshsrtMsQB4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2